$ rpki-client -vvf repo-rpki.idnic.net/repo/dacb7187-7a5f-4e23-be94-593a0c288cb9/0/3130332e31302e37312e302f32342d3234203d3e20313530323130.roa File: 3130332e31302e37312e302f32342d3234203d3e20313530323130.roa (raw, json) Hash identifier: wDta+92k3x+gK76Z0kGm3qQTLhs6WF7nJtND4k4DV9Y= Subject key identifier: FC:2E:97:8E:16:28:A3:EF:90:E1:F8:46:A5:1B:6E:9B:D0:70:17:3A Certificate issuer: /CN=8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB Certificate serial: 1E36FE3132BC878C9F3BA5EBB98C38ED1A3D86C4 Authority key identifier: 8C:6B:9F:E8:0E:F1:DA:40:B9:64:D4:42:9F:78:78:5A:DD:D2:9E:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dacb7187-7a5f-4e23-be94-593a0c288cb9/0/3130332e31302e37312e302f32342d3234203d3e20313530323130.roa Signing time: Tue 14 Jan 2025 12:00:01 +0000 ROA not before: Tue 14 Jan 2025 11:55:01 +0000 ROA not after: Tue 13 Jan 2026 12:00:01 +0000 asID: 150210 IP address blocks: 103.10.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dacb7187-7a5f-4e23-be94-593a0c288cb9/0/8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB.crl rsync://repo-rpki.idnic.net/repo/dacb7187-7a5f-4e23-be94-593a0c288cb9/0/8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 08:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:36:fe:31:32:bc:87:8c:9f:3b:a5:eb:b9:8c:38:ed:1a:3d:86:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB Validity Not Before: Jan 14 11:55:01 2025 GMT Not After : Jan 13 12:00:01 2026 GMT Subject: CN=FC2E978E1628A3EF90E1F846A51B6E9BD070173A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:eb:dc:71:5b:18:e5:e9:e6:3a:73:7c:22:fd: ab:f5:10:71:37:61:25:ce:1b:06:d4:2c:bc:fb:29: fb:34:79:ba:c9:e9:11:22:dc:36:43:28:03:23:31: 1c:91:74:47:51:a5:fa:8d:d7:2b:dc:59:ae:99:0a: 4e:be:eb:b7:f9:ef:54:46:96:ef:4e:10:e3:f5:4d: ca:7d:ed:92:ae:4b:9a:a8:ce:cd:d2:f3:12:28:09: 62:d2:1b:0c:3b:15:81:e2:d8:c0:60:59:bb:93:b2: db:de:03:5e:9d:7b:95:a0:46:94:2f:38:b5:9e:d6: fa:2d:a1:46:a4:b4:ae:3f:c8:e8:c6:c4:b7:b6:62: 72:ce:82:26:3a:9f:08:d0:78:17:ab:d0:1e:0d:b6: 14:af:1d:3c:61:15:f0:53:21:b5:11:a0:c1:33:00: 9a:6c:2f:55:bf:8d:ab:05:94:46:74:25:ba:8b:09: 32:5f:fb:f0:f4:cc:a2:f8:f6:f2:90:16:1e:7a:3d: 30:66:27:84:9c:7b:ee:1e:81:26:bb:cc:0c:06:42: 66:79:4a:52:7d:ee:ce:e3:fe:8d:b1:44:ea:00:30: e1:a9:c7:c6:a8:a3:53:22:20:1d:1c:e4:05:49:3e: f2:cb:f3:13:51:2d:5b:c9:fd:29:38:19:df:79:aa: ca:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2E:97:8E:16:28:A3:EF:90:E1:F8:46:A5:1B:6E:9B:D0:70:17:3A X509v3 Authority Key Identifier: keyid:8C:6B:9F:E8:0E:F1:DA:40:B9:64:D4:42:9F:78:78:5A:DD:D2:9E:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dacb7187-7a5f-4e23-be94-593a0c288cb9/0/8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C6B9FE80EF1DA40B964D4429F78785ADDD29EFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dacb7187-7a5f-4e23-be94-593a0c288cb9/0/3130332e31302e37312e302f32342d3234203d3e20313530323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.71.0/24 Signature Algorithm: sha256WithRSAEncryption 48:fe:24:e7:ec:5f:ca:af:19:8b:bc:8a:7e:81:e0:02:69:23: 6b:e0:f2:f5:45:8d:8f:fd:31:e6:b7:2b:10:26:6a:33:b4:08: f7:30:1c:92:16:ff:2d:37:86:a0:98:8f:97:03:5e:50:8c:c0: b3:6f:12:5b:61:58:50:33:72:7c:0c:c0:f1:75:8b:cf:2c:16: 61:48:62:66:f7:40:bb:e7:6c:0b:e8:bd:b9:25:52:96:f9:24: 32:45:3f:4a:25:b0:21:76:a0:d6:31:93:1a:94:49:87:5a:da: 27:0f:46:2c:6f:d7:6e:ad:ad:05:d2:ff:35:3d:da:ac:08:b8: 8b:ed:e9:fe:ab:2a:68:8d:fa:4d:0a:20:34:93:d9:25:9d:61: 81:63:d8:62:a8:22:2c:fd:c4:87:fe:ef:fc:df:f3:7d:c8:d9: f1:e2:f3:1a:15:1f:1d:23:ee:6f:13:de:4b:2a:6a:6c:c3:ff: 58:cd:b2:91:8c:99:93:5c:e2:4b:7b:da:25:9d:fc:da:91:68: e3:10:a5:65:4c:0e:36:d0:9a:54:af:8d:6f:e7:e7:57:08:b9: fb:1c:99:57:2d:35:e1:20:08:42:ba:be:49:48:30:80:59:9f: 6d:45:3b:2f:08:6c:ac:4b:8c:f5:40:68:07:02:fa:07:48:28: 06:5f:0a:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHjb+MTK8h4yfO6XruYw47Ro9hsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM2QjlGRTgwRUYxREE0MEI5NjRENDQyOUY3ODc4NUFE REQyOUVGQjAeFw0yNTAxMTQxMTU1MDFaFw0yNjAxMTMxMjAwMDFaMDMxMTAvBgNV BAMTKEZDMkU5NzhFMTYyOEEzRUY5MEUxRjg0NkE1MUI2RTlCRDA3MDE3M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv69xxWxjl6eY6c3wi/av1EHE3 YSXOGwbULLz7Kfs0ebrJ6REi3DZDKAMjMRyRdEdRpfqN1yvcWa6ZCk6+67f571RG lu9OEOP1Tcp97ZKuS5qozs3S8xIoCWLSGww7FYHi2MBgWbuTstveA16de5WgRpQv OLWe1votoUaktK4/yOjGxLe2YnLOgiY6nwjQeBer0B4NthSvHTxhFfBTIbURoMEz AJpsL1W/jasFlEZ0JbqLCTJf+/D0zKL49vKQFh56PTBmJ4Sce+4egSa7zAwGQmZ5 SlJ97s7j/o2xROoAMOGpx8aoo1MiIB0c5AVJPvLL8xNRLVvJ/Sk4Gd95qsqPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/C6XjhYoo++Q4fhGpRtum9BwFzowHwYDVR0j BBgwFoAUjGuf6A7x2kC5ZNRCn3h4Wt3SnvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWNiNzE4Ny03YTVmLTRlMjMtYmU5NC01OTNhMGMyODhjYjkvMC84QzZCOUZFODBF RjFEQTQwQjk2NEQ0NDI5Rjc4Nzg1QURERDI5RUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM2QjlGRTgwRUYxREE0MEI5NjRENDQyOUY3ODc4NUFEREQy OUVGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhY2I3MTg3LTdhNWYtNGUyMy1i ZTk0LTU5M2EwYzI4OGNiOS8wLzMxMzAzMzJlMzEzMDJlMzczMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKRzANBgkqhkiG 9w0BAQsFAAOCAQEASP4k5+xfyq8Zi7yKfoHgAmkja+Dy9UWNj/0x5rcrECZqM7QI 9zAckhb/LTeGoJiPlwNeUIzAs28SW2FYUDNyfAzA8XWLzywWYUhiZvdAu+dsC+i9 uSVSlvkkMkU/SiWwIXag1jGTGpRJh1raJw9GLG/Xbq2tBdL/NT3arAi4i+3p/qsq aI36TQogNJPZJZ1hgWPYYqgiLP3Eh/7v/N/zfcjZ8eLzGhUfHSPubxPeSypqbMP/ WM2ykYyZk1ziS3vaJZ382pFo4xClZUwONtCaVK+Nb+fnVwi5+xyZVy014SAIQrq+ SUgwgFmfbUU7LwhsrEuM9UBoBwL6B0goBl8KkA== -----END CERTIFICATE-----Generated at Sun Apr 6 11:10:56 2025 by rpki-client